$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa File: 1ECA8050696211EC8A05D115C4F9AE02.roa (raw, json) Hash identifier: bKIVbhRs5w35IIfwUaxKPcUoIg+dZW+Orr/jkzvA1ls= Subject key identifier: AE:FC:AF:AB:C0:A4:6D:90:6D:2B:11:7C:65:98:54:70:56:62:AC:82 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C83 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa Signing time: Wed 08 Oct 2025 18:48:37 +0000 ROA not before: Wed 08 Oct 2025 18:48:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59239 IP address blocks: 103.100.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 8 18:48:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6b205-6f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:91:ef:b3:52:a5:ca:4a:3e:29:9c:ac:7f:13: f9:b6:15:30:de:2b:1b:7c:3c:b5:90:ae:17:4e:6e: 86:fe:78:22:15:7c:d7:0f:66:b9:f7:c9:bf:fd:25: 58:75:00:a6:b1:39:a1:fe:c7:fe:0f:bf:70:77:41: 2e:e9:2a:21:69:dc:97:d4:9c:e3:69:22:bb:85:d1: 9c:76:c6:5f:c7:c7:7c:25:b8:13:8f:b4:8d:29:13: a2:1f:a8:cb:77:d8:6f:13:af:a7:11:f2:70:8f:d6: c0:51:76:bd:1f:b7:15:88:c5:da:3f:41:c3:df:13: 45:0a:e2:e9:0f:18:4f:68:7c:e3:98:90:a8:e2:04: 1f:f3:a4:cd:24:eb:81:8c:b3:56:00:66:57:18:62: 4e:de:d2:a4:47:fb:ce:8a:cf:63:28:69:d0:bd:a7: a4:7e:34:4a:82:89:86:fb:97:d9:72:67:37:08:3c: 57:ad:8b:22:b4:0d:82:f0:42:24:c3:ca:ca:01:f2: c2:37:79:47:5f:e1:d5:64:76:90:b5:81:63:ae:4a: c8:2c:bc:bc:be:01:be:65:bf:b4:f4:87:7d:46:e1: e4:84:93:b5:54:70:e1:00:1f:6a:cc:82:d0:7b:87: e0:4a:af:8f:f3:2b:11:8c:b2:ee:15:2f:fa:be:fb: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FC:AF:AB:C0:A4:6D:90:6D:2B:11:7C:65:98:54:70:56:62:AC:82 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.234.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:dd:e6:b0:9e:a1:7d:ff:1e:2e:de:60:2f:7e:c9:d7:67:66: 76:0c:a2:b9:33:52:ea:67:8f:9d:de:15:1d:8a:a9:3d:7d:64: d0:be:82:26:16:b0:d5:16:cf:fd:c3:b9:19:2c:0f:8e:38:5d: 13:80:70:25:29:4d:7b:7e:c8:81:5b:7c:e3:2c:65:dd:41:26: c0:31:07:84:55:93:71:5a:79:c3:d9:c4:c9:e4:75:d4:6f:04: 3a:48:b3:c6:ac:b8:76:2b:8d:3e:be:c6:55:90:01:8f:13:38: 1e:cd:0c:2c:b6:42:a3:29:fe:82:e7:e1:14:e9:44:79:41:47: 95:01:84:c2:ed:c1:02:6f:39:02:6a:4f:12:2a:78:9f:b4:b8: 52:e1:38:21:14:15:03:8d:b3:be:be:21:f3:95:a2:d3:c3:e3: 1b:82:d2:08:15:fb:f0:99:36:22:3a:ed:4f:61:e9:4d:ac:f4: b4:24:d7:66:59:0d:bd:aa:a8:d2:e6:b6:a0:71:95:a5:64:f6: 50:53:fa:bf:11:23:07:ab:27:c3:14:d0:dd:6a:12:28:37:55: c3:02:6e:58:3c:a9:df:79:b9:e6:80:1e:73:89:3f:2b:80:71: 17:82:9d:00:11:94:3e:a0:6e:0d:43:8a:08:8a:f1:d9:55:ad: f1:87:5d:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDA4MTg0ODM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YjIwNS02Zjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5Hvs1Klyko+KZysfxP5thUw3isbfDy1kK4XTm6G/ngiFXzXD2a598m//SVY dQCmsTmh/sf+D79wd0Eu6SohadyX1JzjaSK7hdGcdsZfx8d8JbgTj7SNKROiH6jL d9hvE6+nEfJwj9bAUXa9H7cViMXaP0HD3xNFCuLpDxhPaHzjmJCo4gQf86TNJOuB jLNWAGZXGGJO3tKkR/vOis9jKGnQvaekfjRKgomG+5fZcmc3CDxXrYsitA2C8EIk w8rKAfLCN3lHX+HVZHaQtYFjrkrILLy8vgG+Zb+09Id9RuHkhJO1VHDhAB9qzILQ e4fgSq+P8ysRjLLuFS/6vvtfVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK78r6vA pG2QbSsRfGWYVHBWYqyCMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvMUVDQTgwNTA2 OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZOowDQYJKoZIhvcNAQELBQADggEBAJzd5rCeoX3/Hi7e YC9+yddnZnYMorkzUupnj53eFR2KqT19ZNC+giYWsNUWz/3DuRksD444XROAcCUp TXt+yIFbfOMsZd1BJsAxB4RVk3FaecPZxMnkddRvBDpIs8asuHYrjT6+xlWQAY8T OB7NDCy2QqMp/oLn4RTpRHlBR5UBhMLtwQJvOQJqTxIqeJ+0uFLhOCEUFQONs76+ IfOVotPD4xuC0ggV+/CZNiI67U9h6U2s9LQk12ZZDb2qqNLmtqBxlaVk9lBT+r8R IwerJ8MU0N1qEig3VcMCblg8qd95ueaAHnOJPyuAcReCnQARlD6gbg1DigiK8dlV rfGHXVc= -----END CERTIFICATE-----Generated at Mon Oct 20 11:26:42 2025 by rpki-client